Hybrid AD Joined for few computers

Question

Hi All,

I have a requirement of Azure AD hybrid AD joined for few computers since we are planning to do a POC. so is there any way of doing this?

As I have researched, we can achieve this through changing hybrid ad join configurations on Azure AD connector but it will be applied on all domain joined computers and Servers that including Active Directory(Windows server 2016).

appreciate the help!

Thanks,
Dilan

Answer 1

Hi @Dilan Nanayakkara • Thank you for reaching out.

Below are the 3 options that you have for Hybrid Join of your devices. Based on your environment, you may choose the one that is appropriate for you:

1. Configure hybrid Azure Active Directory join for federated domains
2. Configure hybrid Azure Active Directory join for managed domains
3. Configure hybrid Azure Active Directory joined devices manually

As you want to do a POC of hybrid Azure AD join on few computers before enabling it across entire organization, you can do a controlled validation of hybrid Azure AD join on Windows current devices as mentioned below:

• Clear the Service Connection Point (SCP) entry from Active Directory (AD) if it exists
• Configure client-side registry setting for SCP on your domain-joined computers using a Group Policy Object (GPO)
• If you are using AD FS, you must also configure the client-side registry setting for SCP on your AD FS server using a GPO
• You may also need to customize synchronization options in Azure AD Connect to enable device synchronization.

For step-by-step instructions on these steps, please refer to Controlled validation of hybrid Azure AD join, which includes instructions for both Windows current devices (Windows 10 and later) and Windows down-level (Windows 7 and later) devices.

-----------------------------------------------------------------------------------------------------------

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.